0381f9e29a2a31d0e6553f5ca6547a62c1e321edb6b92f8aa5addfa55cd10584

Analysis

max time kernel
147s
max time network
150s
platform
windows10-2004_x64
resource
win10v2004-20240508-en
resource tags

arch:x64arch:x86image:win10v2004-20240508-enlocale:en-usos:windows10-2004-x64system
submitted
17/06/2024, 09:17

Target

b7d9d68d583900b38b917b1ccc40a85c_JaffaCakes118.exe
Size

843KB
MD5

b7d9d68d583900b38b917b1ccc40a85c
SHA1

3d0c0c68118a2a7e5999e1cd783e57595b219381
SHA256

0381f9e29a2a31d0e6553f5ca6547a62c1e321edb6b92f8aa5addfa55cd10584
SHA512

0fbf2ec28e83f3efa079b86e882be900c52d17e712f9c2b5380aa37203bca5c544a1aebac13c32118386e56727185cf585da2dfd75a06ce61f01bb9a4a1ebd2e
SSDEEP

12288:/nOzGbn66VpFwyiXsw6+McmkmsRynxaSLwLFLGm6G++XNPsfGlEje2BfwT2+pHTC:/nOzen60z4syMFIynULxj1+g5wf8NTC

Score

3^/10

Program crash 1 IoCs

pid	pid_target	Process	procid_target
836	2800	WerFault.exe	80

C:\Users\Admin\AppData\Local\Temp\b7d9d68d583900b38b917b1ccc40a85c_JaffaCakes118.exe
"C:\Users\Admin\AppData\Local\Temp\b7d9d68d583900b38b917b1ccc40a85c_JaffaCakes118.exe"
1⤵
PID:2800
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 2800 -s 488
  2⤵
  - Program crash
  PID:836

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 452 -p 2800 -ip 2800
1⤵
PID:2636

memory/2800-0-0x0000000000400000-0x0000000000414000-memory.dmp

Filesize
80KB

Download
memory/2800-2-0x0000000000401000-0x000000000040B000-memory.dmp

Filesize
40KB

Download
memory/2800-5-0x0000000000400000-0x0000000000414000-memory.dmp

Filesize
80KB

Download